Bug 250231

Summary: [WPE][GTK] Sandbox should not allow mounting entire home directory
Product: WebKit Reporter: Michael Catanzaro <mcatanzaro>
Component: WebKitGTKAssignee: Michael Catanzaro <mcatanzaro>
Status: RESOLVED FIXED    
Severity: Normal CC: bugs-noreply, mcatanzaro
Priority: P2    
Version: WebKit Nightly Build   
Hardware: PC   
OS: Linux   
See Also: https://bugs.webkit.org/show_bug.cgi?id=220117

Description Michael Catanzaro 2023-01-06 14:04:21 PST 
Let's split this from bug #220117. We should crash if the application tries to mount / or /home or $HOME in the sandbox. We cannot prevent apps from allowlisting whatever they wish, but if they want to be stupid they should have to try somewhat harder than that.
Comment 1 Michael Catanzaro 2023-01-06 16:22:39 PST 
Pull request: https://github.com/WebKit/WebKit/pull/8330
Comment 2 EWS 2023-01-24 14:41:08 PST 
Committed 259309@main (4b0c2332b9a6): <https://commits.webkit.org/259309@main>

Reviewed commits have been landed. Closing PR #8330 and removing active labels.